> > * Document the security properties of HTTP and its associated
>> mechanisms (e.g., Basic and Digest authentication, cookies, TLS) for
> > common applications
> . . .
> > * A document cataloguing the security properties of HTTP
>>
This probably means not creating any new security mechanisms, but
there is great interest in new security mechanisms for HTTP. Please
consider adding "current" before "security properties" in the
charter, but it is no big deal if you don't.
--Paul Hoffman, Director
--VPN Consortium